Information security within organisations has to date, largely been driven by reactions to immediate, impending threats; breaches and other incidents. Other drivers can come from managers or executives beginning to understand the importance of information security but often only reacting tactically to perceived and / or “marketed” threats. The problem with these is the net negative operational impact they have on the organisation’s information asset environment. Individual issues get targeted rather than broad-spectrum mitigations with a better return on investment. more »

I would like to congratulate Senator Stephen Conroy, Minister for Broadband, Communications and the Digital Economy within the Australian Government, for greatly assisting Australian businesses to become less secure. Yes, you're reading that correctly… more »

In August 2009 I wrote of my concerns regarding the drive to place core business functions in to the cloud. I wrote that the cloud, whilst on the surface attractive due to potential management savings, presents the potential user with many traps that co… more »

"To have one's head in the clouds" is a saying that means one is prone to having fantastic or ridiculous dreams, to be thinking impractically, to be prone to day dreaming and to be disconnected from reality. Whilst this is an old saying that has been us… more »

NAC (Network Admission Control or Network Access Control) has existed for a few years now, yet we still haven't seen wide spread adoption of it within the corporate network environment. Despite being pushed by the major network solution vendors, includi… more »